ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2016.0251
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2016-0251)
Resumen:	The remote host is missing an update for the 'flash-player-plugin' package(s) announced via the MGASA-2016-0251 advisory.
Descripción:	Summary: The remote host is missing an update for the 'flash-player-plugin' package(s) announced via the MGASA-2016-0251 advisory. Vulnerability Insight: Adobe Flash Player 11.2.202.632 contains fixes to critical security vulnerabilities found in earlier versions that could potentially allow an attacker to take control of the affected system. This update resolves a race condition vulnerability that could lead to information disclosure (CVE-2016-4247). This update resolves type confusion vulnerabilities that could lead to code execution (CVE-2016-4223, CVE-2016-4224, CVE-2016-4225). This update resolves use-after-free vulnerabilities that could lead to code execution (CVE-2016-4173, CVE-2016-4174, CVE-2016-4222, CVE-2016-4226, CVE-2016-4227, CVE-2016-4228, CVE-2016-4229, CVE-2016-4230, CVE-2016-4231, CVE-2016-4248). This update resolves a heap buffer overflow vulnerability that could lead to code execution (CVE-2016-4249). This update resolves memory corruption vulnerabilities that could lead to code execution (CVE-2016-4172, CVE-2016-4175, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, CVE-2016-4246). This update resolves a memory leak vulnerability (CVE-2016-4232). This update resolves stack corruption vulnerabilities that could lead to code execution (CVE-2016-4176, CVE-2016-4177). This update resolves a security bypass vulnerability that could lead to information disclosure (CVE-2016-4178) Affected Software/OS: 'flash-player-plugin' package(s) on Mageia 5. Solution: Please install the updated package(s). CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-4172 BugTraq ID: 91725 http://www.securityfocus.com/bid/91725 RedHat Security Advisories: RHSA-2016:1423 https://access.redhat.com/errata/RHSA-2016:1423 http://www.securitytracker.com/id/1036280 SuSE Security Announcement: SUSE-SU-2016:1826 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00017.html SuSE Security Announcement: openSUSE-SU-2016:1802 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00016.html Common Vulnerability Exposure (CVE) ID: CVE-2016-4173 BugTraq ID: 91719 http://www.securityfocus.com/bid/91719 Microsoft Security Bulletin: MS16-093 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-093 Common Vulnerability Exposure (CVE) ID: CVE-2016-4174 Common Vulnerability Exposure (CVE) ID: CVE-2016-4175 https://www.exploit-db.com/exploits/40103/ Common Vulnerability Exposure (CVE) ID: CVE-2016-4176 BugTraq ID: 91721 http://www.securityfocus.com/bid/91721 https://www.exploit-db.com/exploits/40105/ Common Vulnerability Exposure (CVE) ID: CVE-2016-4177 https://www.exploit-db.com/exploits/40104/ Common Vulnerability Exposure (CVE) ID: CVE-2016-4178 BugTraq ID: 91723 http://www.securityfocus.com/bid/91723 Common Vulnerability Exposure (CVE) ID: CVE-2016-4179 https://www.exploit-db.com/exploits/40102/ Common Vulnerability Exposure (CVE) ID: CVE-2016-4180 Common Vulnerability Exposure (CVE) ID: CVE-2016-4181 Common Vulnerability Exposure (CVE) ID: CVE-2016-4182 https://security.gentoo.org/glsa/201610-10 Common Vulnerability Exposure (CVE) ID: CVE-2016-4183 Common Vulnerability Exposure (CVE) ID: CVE-2016-4184 Common Vulnerability Exposure (CVE) ID: CVE-2016-4185 Common Vulnerability Exposure (CVE) ID: CVE-2016-4186 Common Vulnerability Exposure (CVE) ID: CVE-2016-4187 Common Vulnerability Exposure (CVE) ID: CVE-2016-4188 Common Vulnerability Exposure (CVE) ID: CVE-2016-4189 BugTraq ID: 91715 http://www.securityfocus.com/bid/91715 Common Vulnerability Exposure (CVE) ID: CVE-2016-4190 Common Vulnerability Exposure (CVE) ID: CVE-2016-4217 https://security.gentoo.org/glsa/201607-03 Common Vulnerability Exposure (CVE) ID: CVE-2016-4218 Common Vulnerability Exposure (CVE) ID: CVE-2016-4219 Common Vulnerability Exposure (CVE) ID: CVE-2016-4220 Common Vulnerability Exposure (CVE) ID: CVE-2016-4221 Common Vulnerability Exposure (CVE) ID: CVE-2016-4222 http://www.zerodayinitiative.com/advisories/ZDI-16-425 Common Vulnerability Exposure (CVE) ID: CVE-2016-4223 BugTraq ID: 91718 http://www.securityfocus.com/bid/91718 http://www.zerodayinitiative.com/advisories/ZDI-16-424 Common Vulnerability Exposure (CVE) ID: CVE-2016-4224 http://www.zerodayinitiative.com/advisories/ZDI-16-428 Common Vulnerability Exposure (CVE) ID: CVE-2016-4225 http://www.zerodayinitiative.com/advisories/ZDI-16-427 Common Vulnerability Exposure (CVE) ID: CVE-2016-4226 https://www.exploit-db.com/exploits/40308/ Common Vulnerability Exposure (CVE) ID: CVE-2016-4227 https://www.exploit-db.com/exploits/40307/ Common Vulnerability Exposure (CVE) ID: CVE-2016-4228 https://www.exploit-db.com/exploits/40309/ Common Vulnerability Exposure (CVE) ID: CVE-2016-4229 https://www.exploit-db.com/exploits/40310/ http://packetstormsecurity.com/files/138531/Adobe-Flash-BitmapData.copyPixels-Use-After-Free.html Common Vulnerability Exposure (CVE) ID: CVE-2016-4230 https://www.exploit-db.com/exploits/40311/ http://packetstormsecurity.com/files/138532/Adobe-Flash-MovieClip-Transform-Use-After-Free.html https://bugs.chromium.org/p/project-zero/issues/detail?id=844&q=adobe%20flash Common Vulnerability Exposure (CVE) ID: CVE-2016-4231 https://www.exploit-db.com/exploits/40356/ Common Vulnerability Exposure (CVE) ID: CVE-2016-4232 BugTraq ID: 91724 http://www.securityfocus.com/bid/91724 https://www.exploit-db.com/exploits/40355/ Common Vulnerability Exposure (CVE) ID: CVE-2016-4233 Common Vulnerability Exposure (CVE) ID: CVE-2016-4234 Common Vulnerability Exposure (CVE) ID: CVE-2016-4235 Common Vulnerability Exposure (CVE) ID: CVE-2016-4236 Common Vulnerability Exposure (CVE) ID: CVE-2016-4237 Common Vulnerability Exposure (CVE) ID: CVE-2016-4238 Common Vulnerability Exposure (CVE) ID: CVE-2016-4239 Common Vulnerability Exposure (CVE) ID: CVE-2016-4240 Common Vulnerability Exposure (CVE) ID: CVE-2016-4241 Common Vulnerability Exposure (CVE) ID: CVE-2016-4242 Common Vulnerability Exposure (CVE) ID: CVE-2016-4243 Common Vulnerability Exposure (CVE) ID: CVE-2016-4244 Common Vulnerability Exposure (CVE) ID: CVE-2016-4245 Common Vulnerability Exposure (CVE) ID: CVE-2016-4246 Common Vulnerability Exposure (CVE) ID: CVE-2016-4247 BugTraq ID: 91720 http://www.securityfocus.com/bid/91720 Common Vulnerability Exposure (CVE) ID: CVE-2016-4248 Common Vulnerability Exposure (CVE) ID: CVE-2016-4249 BugTraq ID: 91722 http://www.securityfocus.com/bid/91722
Copyright	Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.